Improper Encoding or Escaping of Output

The product prepares a structured message for communication with another component, but encoding or escaping of the data is either missing or done incorrectly. As a result, the intended structure of the message is not preserved.

CVEs (433)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-39381 1Huawei 2Emui Harmonyos Nov 21, 2024 Aug 13, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Input verification vulnerability in the storage module. Successful exploitation of this vulnerability may cause the device to restart.
CVE-2022-36392 1Intel 1Converged Security Management Engine Firmware Nov 21, 2024 Aug 11, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Improper input validation in some firmware for Intel(R) AMT and Intel(R) Standard Manageability before versions 11.8.94, 11.12.94, 11.22.94, 12.0.93, 14.1.70, 15.0.45, and 16.1.27 in Intel (R) CSME may allow an unauthent...Show more Improper input validation in some firmware for Intel(R) AMT and Intel(R) Standard Manageability before versions 11.8.94, 11.12.94, 11.22.94, 12.0.93, 14.1.70, 15.0.45, and 16.1.27 in Intel (R) CSME may allow an unauthenticated user to potentially enable denial of service via network access.Show less
CVE-2023-40014 1Openzeppelin 2Openzeppelin Contracts Openzeppelin Contracts Upgradable Nov 21, 2024 Aug 10, 2023 N/A· v4 5.3 MEDIUM· v3 N/A· v2 OpenZeppelin Contracts is a library for secure smart contract development. Starting in version 4.0.0 and prior to version 4.9.3, contracts using `ERC2771Context` along with a custom trusted forwarder may see `_msgSender`...Show more OpenZeppelin Contracts is a library for secure smart contract development. Starting in version 4.0.0 and prior to version 4.9.3, contracts using `ERC2771Context` along with a custom trusted forwarder may see `_msgSender` return `address(0)` in calls that originate from the forwarder with calldata shorter than 20 bytes. This combination of circumstances does not appear to be common, in particular it is not the case for `MinimalForwarder` from OpenZeppelin Contracts, or any deployed forwarder the team is aware of, given that the signer address is appended to all calls that originate from these forwarders. The problem has been patched in v4.9.3. Show less
CVE-2023-39527 1Prestashop 1Prestashop Nov 21, 2024 Aug 7, 2023 N/A· v4 6.1 MEDIUM· v3 N/A· v2 PrestaShop is an open source e-commerce web application. Versions prior to 1.7.8.10, 8.0.5, and 8.1.1 are vulnerable to cross-site scripting through the `isCleanHTML` method. Versions 1.7.8.10, 8.0.5, and 8.1.1 contain a...Show more PrestaShop is an open source e-commerce web application. Versions prior to 1.7.8.10, 8.0.5, and 8.1.1 are vulnerable to cross-site scripting through the `isCleanHTML` method. Versions 1.7.8.10, 8.0.5, and 8.1.1 contain a patch. There are no known workarounds.Show less
CVE-2023-3997 1Splunk 1Soar Dec 10, 2024 Jul 31, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Splunk SOAR versions lower than 6.1.0 are indirectly affected by a potential vulnerability accessed through the user’s terminal. A third party can send Splunk SOAR a maliciously crafted web request containing special ANS...Show more Splunk SOAR versions lower than 6.1.0 are indirectly affected by a potential vulnerability accessed through the user’s terminal. A third party can send Splunk SOAR a maliciously crafted web request containing special ANSI characters to cause log file poisoning. When a terminal user attempts to view the poisoned logs, this can tamper with the terminal and cause possible malicious code execution from the terminal user’s action.Show less
CVE-2022-43713 1Gxsoftware 1Xperiencentral Nov 21, 2024 Jul 26, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Interactive Forms (IAF) in GX Software XperienCentral versions 10.33.1 until 10.35.0 was vulnerable to invalid data input because form validation could be bypassed.
CVE-2022-31458 1Rtx Trap Project 1Rtx Trap Nov 21, 2024 Jul 25, 2023 N/A· v4 6.1 MEDIUM· v3 N/A· v2 RTX TRAP v1.0 was discovered to be vulnerable to host header poisoning.
CVE-2023-35941 1Envoyproxy 1Envoy Nov 21, 2024 Jul 25, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12, a malicious client is able to construct credentials with permanent va...Show more Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12, a malicious client is able to construct credentials with permanent validity in some specific scenarios. This is caused by the some rare scenarios in which HMAC payload can be always valid in OAuth2 filter's check. Versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12 have a fix for this issue. As a workaround, avoid wildcards/prefix domain wildcards in the host's domain configuration.Show less
CVE-2023-34036 1Vmware 1Spring Hateoas Nov 21, 2024 Jul 17, 2023 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Reactive web applications that use Spring HATEOAS to produce hypermedia-based responses might be exposed to malicious forwarded headers if they are not behind a trusted proxy that ensures correctness of such headers, or...Show more Reactive web applications that use Spring HATEOAS to produce hypermedia-based responses might be exposed to malicious forwarded headers if they are not behind a trusted proxy that ensures correctness of such headers, or if they don't have anything else in place to handle (and possibly discard) forwarded headers either in WebFlux or at the level of the underlying HTTP server. For the application to be affected, it needs to satisfy the following requirements: * It needs to use the reactive web stack (Spring WebFlux) and Spring HATEOAS to create links in hypermedia-based responses. * The application infrastructure does not guard against clients submitting (X-)Forwarded… headers. Show less
CVE-2023-3668 1Froxlor 1Froxlor Nov 21, 2024 Jul 14, 2023 N/A· v4 7.2 HIGH· v3 N/A· v2 Improper Encoding or Escaping of Output in GitHub repository froxlor/froxlor prior to 2.0.21.
CVE-2023-24480 1Honeywell 1C300 Firmware Nov 21, 2024 Jul 13, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Controller DoS due to stack overflow when decoding a message from the server. See Honeywell Security Notification for recommendations on upgrading and versioning.
CVE-2023-2200 1Gitlab 1Gitlab Nov 21, 2024 Jul 13, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 An issue has been discovered in GitLab CE/EE affecting all versions starting from 7.14 before 15.11.10, all versions starting from 16.0 before 16.0.6, all versions starting from 16.1 before 16.1.1, which allows an attack...Show more An issue has been discovered in GitLab CE/EE affecting all versions starting from 7.14 before 15.11.10, all versions starting from 16.0 before 16.0.6, all versions starting from 16.1 before 16.1.1, which allows an attacker to inject HTML in an email address field.Show less
CVE-2023-36921 1Sap 1Solution Manager Nov 21, 2024 Jul 11, 2023 N/A· v4 7.2 HIGH· v3 N/A· v2 SAP Solution Manager (Diagnostics agent) - version 7.20, allows an attacker to tamper with headers in a client request. This misleads SAP Diagnostics Agent to serve poisoned content to the server. On successful exploitat...Show more SAP Solution Manager (Diagnostics agent) - version 7.20, allows an attacker to tamper with headers in a client request. This misleads SAP Diagnostics Agent to serve poisoned content to the server. On successful exploitation, the attacker can cause a limited impact on confidentiality and availability of the application. Show less
CVE-2023-36919 1Sap 1Enable Now Nov 21, 2024 Jul 11, 2023 N/A· v4 5.3 MEDIUM· v3 N/A· v2 In SAP Enable Now - versions WPB_MANAGER 1.0, WPB_MANAGER_CE 10, WPB_MANAGER_HANA 10, ENABLE_NOW_CONSUMP_DEL 1704, the Referrer-Policy response header is not implemented, allowing an unauthenticated attacker to obtain re...Show more In SAP Enable Now - versions WPB_MANAGER 1.0, WPB_MANAGER_CE 10, WPB_MANAGER_HANA 10, ENABLE_NOW_CONSUMP_DEL 1704, the Referrer-Policy response header is not implemented, allowing an unauthenticated attacker to obtain referrer details, resulting in information disclosure.Show less
CVE-2023-3552 1Teampass 1Teampass Nov 21, 2024 Jul 8, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 Improper Encoding or Escaping of Output in GitHub repository nilsteampassnet/teampass prior to 3.0.10.
CVE-2023-32301 1Discourse 1Discourse Nov 21, 2024 Jun 13, 2023 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Discourse is an open source discussion platform. Prior to version 3.0.4 of the `stable` branch and version 3.1.0.beta5 of the `beta` and `tests-passed` branches, multiple duplicate topics could be created if topic embedd...Show more Discourse is an open source discussion platform. Prior to version 3.0.4 of the `stable` branch and version 3.1.0.beta5 of the `beta` and `tests-passed` branches, multiple duplicate topics could be created if topic embedding is enabled. This issue is patched in version 3.0.4 of the `stable` branch and version 3.1.0.beta5 of the `beta` and `tests-passed` branches. As a workaround, disable topic embedding if it has been enabled.Show less
CVE-2023-3190 1Teampass 1Teampass Nov 21, 2024 Jun 10, 2023 N/A· v4 4.6 MEDIUM· v3 N/A· v2 Improper Encoding or Escaping of Output in GitHub repository nilsteampassnet/teampass prior to 3.0.9.
CVE-2023-29543 1Mozilla 2Firefox Focus Jan 10, 2025 Jun 2, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 An attacker could have caused memory corruption and a potentially exploitable use-after-free of a pointer in a global object's debugger vector. This vulnerability affects Firefox for Android < 112, Firefox < 112, and Foc...Show more An attacker could have caused memory corruption and a potentially exploitable use-after-free of a pointer in a global object's debugger vector. This vulnerability affects Firefox for Android < 112, Firefox < 112, and Focus for Android < 112.Show less
CVE-2023-29541 1Mozilla 4Firefox Firefox EsrFocus+1 more Jan 10, 2025 Jun 2, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Firefox did not properly handle downloads of files ending in <code>.desktop</code>, which can be interpreted to run attacker-controlled commands. <br>This bug only affects Firefox for Linux on certain Distributions. Oth...Show more Firefox did not properly handle downloads of files ending in <code>.desktop</code>, which can be interpreted to run attacker-controlled commands. <br>This bug only affects Firefox for Linux on certain Distributions. Other operating systems are unaffected, and Mozilla is unable to enumerate all affected Linux Distributions.*. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10.Show less
CVE-2023-23599 1Mozilla 3Firefox Firefox EsrThunderbird Dec 18, 2025 Jun 2, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 When copying a network request from the developer tools panel as a curl command the output was not being properly sanitized and could allow arbitrary commands to be hidden within. This vulnerability affects Firefox < 109...Show more When copying a network request from the developer tools panel as a curl command the output was not being properly sanitized and could allow arbitrary commands to be hidden within. This vulnerability affects Firefox < 109, Firefox ESR < 102.7, and Thunderbird < 102.7.Show less

Previous 1...121314...22 Next